Description
Provides the SPIRE server that manages SPIFFE identities, registration entries, trust bundles, and attestation policy for a deployment. Administrators use it as the control plane for workload identity.
A compromised or misconfigured identity server can affect every workload that trusts it. Protect datastore access, admin APIs, signing keys, registration rules, and backups.